Overview

URLifcgmsconsultinggroup.com/
IP 161.97.187.97 (Germany)
ASN#51167 Contabo GmbH
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-01 00:12:09 UTC
StatusLoading report..
IDS alerts0
Blocklist alert59
urlquery alerts No alerts detected
Tags None

Domain Summary (14)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
ifcgmsconsultinggroup.com (109) 0 2022-11-02 00:07:29 UTC 2022-11-30 02:12:16 UTC 161.97.187.97 Unknown ranking
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-30 17:12:31 UTC 34.102.187.140
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-11-30 17:19:42 UTC 34.160.144.191
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-30 17:13:24 UTC 34.117.237.239
push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-11-30 17:12:17 UTC 35.162.125.72
img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-11-30 17:26:07 UTC 34.120.237.76
ocsp.pki.goog (10) 175 2017-06-14 07:23:31 UTC 2022-11-30 17:12:14 UTC 142.250.74.131
www.googletagmanager.com (1) 75 2013-05-22 02:07:37 UTC 2022-11-30 23:14:41 UTC 142.250.74.168
region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-11-30 17:28:03 UTC 216.239.34.36 Domain (google-analytics.com) ranked at: 8401
r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-11-30 17:12:16 UTC 23.36.76.226
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2022-11-30 20:24:46 UTC 93.184.220.29
ocsp.sectigo.com (1) 487 2018-12-17 11:31:55 UTC 2022-11-30 21:13:57 UTC 104.18.32.68
fonts.gstatic.com (6) 0 2014-09-09 00:40:21 UTC 2022-11-30 22:48:06 UTC 216.58.207.227 Domain (gstatic.com) ranked at: 540
fonts.googleapis.com (3) 8877 2013-06-10 20:14:26 UTC 2022-11-30 21:05:51 UTC 142.250.74.106

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-12-01 2 ifcgmsconsultinggroup.com/ Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/ Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-includes/css/classic-themes.min.css?ver=1 Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/fr (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awes (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gangrene-post-bac-350x (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/uploads/elementor/css/post-6.css?ver=1 (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/css/frontend- (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/uploads/stm_fonts/stm/stm.css?ver=1.0 Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/uploads/essential-addons-elementor/eae (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/fonts/ (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/fr (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/stm-hfe.js (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/fr (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/eicons/fo (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awes (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-includes/js/wp-util.min.js?ver=6.1.1 Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-includes/js/underscore.min.js?ver=1.13.4 Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/uploads/stm_fonts/stm/stm.ttf?oljwaf Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/js/text-edito (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/cover-9.webp Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/uploads/elementor/css/post-1071.css?ve (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/select2.m (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/isotope.pk (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/inc/megamenu/assets/ (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/layouts/g (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awes (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/style.css?ver=6.3.6 Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/js/rs6 (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/js/webpack.ru (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awes (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/header_bu (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awes (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/header-footer-elementor/inc/wi (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4 Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-includes/js/dist/vendor/regenerator-runtime.mi (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/jquery.fa (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/eicons/cs (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/owl.carou (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/uploads/elementor/css/post-7435.css?ve (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/bootstrap. (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/js/elemen (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/js/frontend-m (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awes (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/jquery.fan (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/select2.mi (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/css/front (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/fr (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awes (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/essential-addons-for-elementor (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/plugins/stm-post-type/theme-options/nu (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/owl.carous (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/uploads/essential-addons-elementor/eae (...) Phishing
2022-12-01 2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/layouts/l (...) Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 161.97.187.97
Date UQ / IDS / BL URL IP
2023-01-21 00:11:56 +0000 0 - 0 - 54 ifcgmsconsultinggroup.com/ 161.97.187.97
2023-01-19 01:58:07 +0000 0 - 2 - 0 africafooddistribution.com/ 161.97.187.97
2023-01-14 03:59:02 +0000 0 - 2 - 0 africafooddistribution.com/ 161.97.187.97
2022-12-18 02:13:02 +0000 0 - 0 - 57 ifcgmsconsultinggroup.com/ 161.97.187.97
2022-12-10 00:12:48 +0000 0 - 0 - 56 ifcgmsconsultinggroup.com/ 161.97.187.97


Last 5 reports on ASN: Contabo GmbH
Date UQ / IDS / BL URL IP
2023-01-29 12:38:45 +0000 0 - 0 - 6 mprfoods.com/uniray_delivery_address/dhl-iykom.zip 75.119.144.43
2023-01-29 12:34:44 +0000 0 - 0 - 2 aiutiamobabbonatale.it/posts/adobe.zip 62.171.172.174
2023-01-29 12:26:59 +0000 0 - 0 - 1 careandshare.ca/appdomain.cloud/e7c3e73b88e90 (...) 173.212.237.43
2023-01-29 11:37:23 +0000 0 - 0 - 39 b2bee.gr/klanten-omgevingen/abc643b44a8298608 (...) 144.91.73.214
2023-01-29 11:31:45 +0000 0 - 0 - 3 archives-program.com/lbx2/qKogqv-899/?i=1 161.97.72.48


Last 4 reports on domain: ifcgmsconsultinggroup.com
Date UQ / IDS / BL URL IP
2023-01-21 00:11:56 +0000 0 - 0 - 54 ifcgmsconsultinggroup.com/ 161.97.187.97
2022-12-18 02:13:02 +0000 0 - 0 - 57 ifcgmsconsultinggroup.com/ 161.97.187.97
2022-12-10 00:12:48 +0000 0 - 0 - 56 ifcgmsconsultinggroup.com/ 161.97.187.97
2022-12-01 00:12:09 +0000 0 - 0 - 59 ifcgmsconsultinggroup.com/ 161.97.187.97


Last 3 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-21 00:11:56 +0000 0 - 0 - 54 ifcgmsconsultinggroup.com/ 161.97.187.97
2022-12-18 02:13:02 +0000 0 - 0 - 57 ifcgmsconsultinggroup.com/ 161.97.187.97
2022-12-10 00:12:48 +0000 0 - 0 - 56 ifcgmsconsultinggroup.com/ 161.97.187.97

JavaScript

Executed Scripts (57)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (151)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         161.97.187.97
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Thu, 01 Dec 2022 00:11:57 GMT
Content-Length: 162
Connection: keep-alive
Location: https://ifcgmsconsultinggroup.com/


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   162
Md5:    4f8e702cc244ec5d4de32740c0ecbd97
Sha1:   3adb1f02d5b6054de0046e367c1d687b6cdf7aff
Sha256: 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6047
Expires: Thu, 01 Dec 2022 01:52:44 GMT
Date: Thu, 01 Dec 2022 00:11:57 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5414
Cache-Control: max-age=128976
Date: Thu, 01 Dec 2022 00:11:57 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 12:01:33 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 23:18:04 GMT
cache-control: public,max-age=3600
age: 3233
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    30db107dcf4380cef05efea409c2e6a3
Sha1:   96e6a306fbc07299aba64e5c14e2bfca35872fa9
Sha256: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6674
Expires: Thu, 01 Dec 2022 02:03:11 GMT
Date: Thu, 01 Dec 2022 00:11:57 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: FSMXc6MWjM88zTDbkgvKJzxcYXCxDXXmQDH22cbyAz7xPF37Xr2GTxBQ168+4YJPzn01RDJPxqE=
x-amz-request-id: DMXZ24YEJMAGDAK7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 23:45:26 GMT
age: 1591
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 01 Dec 2022 00:11:57 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 00:11:57 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 19:21:16 GMT
Expires: Tue, 06 Dec 2022 19:21:15 GMT
Etag: "319a34dc74176d3286a847a9856286396aea8bf9"
Cache-Control: max-age=500357,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77279bc63ee8b511-OSL

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 00:11:15 GMT
cache-control: public,max-age=3600
age: 43
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5397
Cache-Control: max-age=123890
Date: Thu, 01 Dec 2022 00:11:58 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 10:36:48 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Jc02Qr2DGlaNMjHoLKJ+MA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         35.162.125.72
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JgdkKUX4IbR3sc0qRWOo9g07JcU=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15635
Expires: Thu, 01 Dec 2022 04:32:34 GMT
Date: Thu, 01 Dec 2022 00:11:59 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15635
Expires: Thu, 01 Dec 2022 04:32:34 GMT
Date: Thu, 01 Dec 2022 00:11:59 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15635
Expires: Thu, 01 Dec 2022 04:32:34 GMT
Date: Thu, 01 Dec 2022 00:11:59 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15635
Expires: Thu, 01 Dec 2022 04:32:34 GMT
Date: Thu, 01 Dec 2022 00:11:59 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15635
Expires: Thu, 01 Dec 2022 04:32:34 GMT
Date: Thu, 01 Dec 2022 00:11:59 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10985
x-amzn-requestid: ef9e5eb9-b7b3-41e9-9837-a5979ab35d94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cV91OFzsoAMFcew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63857687-53b152c0027d26e52383e27e;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 03:03:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JGFRksMQ_LxceeV_368Xt-gjhd67bMn7D_s0X1V1fAiR6npuqCHayw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 03:09:45 GMT
age: 75734
etag: "0660a548a491d4a58ca2246f094f0553437c3f61"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10985
Md5:    f07f254d44ff2fb86ee22cee39ef3eb0
Sha1:   0660a548a491d4a58ca2246f094f0553437c3f61
Sha256: 859b2416d638b1dc91ff563800517124b38d45b4c5db99e21539c1700829dbe4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff41bace1-a7a5-42ae-b255-862c9cbac9de.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10437
x-amzn-requestid: 2a8183c4-47ec-42bb-8e67-3e742dc3750c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0YpEeooAMFfvg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdd0-2014fd4d49dcd4087bf1db4d;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:40:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wQc8gdA6brp46QVd0ee9cBtnmA9q1j3nUO2ou9MDIhecNINtmphq0Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:50:06 GMT
age: 8513
etag: "99b5ef2d6a4d1a1251a06d9d9f989b01d089a8d1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10437
Md5:    291127b670135b42b6e9687aa2a13237
Sha1:   99b5ef2d6a4d1a1251a06d9d9f989b01d089a8d1
Sha256: 49b082a738bcd15a0bb4e9f96a180797ffcfa368977ac1927df882a0343664d3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4762
x-amzn-requestid: 52b09ca3-705b-4c86-9f56-172637553f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7TVG58oAMFQTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c15-4577a47243ad190672f8ac89;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Y0-NAp2LMMG5TjQQ9ENHwDyKXLObKTYqzPPOWvZhs7Y9WJIC6LoblQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 13:29:35 GMT
age: 38544
etag: "fa2217bae05b7beca2e12597eaad835298276b82"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4762
Md5:    d2dd5a4bcfd47db8f38544bf39ce3031
Sha1:   fa2217bae05b7beca2e12597eaad835298276b82
Sha256: 3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9613
x-amzn-requestid: a46cc458-2e28-4ca7-b223-ba66256caef1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cTPfmEmKoAMFZvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63845f96-7ecee5764c4a40e50e5b1f98;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 07:13:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6p5kV3OCTlaiLWEa9wyeRJOYoxPNZwLhXGIbEnymaufjKL246zfrhw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 07:44:22 GMT
age: 59257
etag: "3628390c62642dcc375b28f58c9b48180c4abd73"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9613
Md5:    b92721cbe24623f1713a5248d6a7c1b2
Sha1:   3628390c62642dcc375b28f58c9b48180c4abd73
Sha256: 37d0451c03bc7cf0253aba6d3204cbf38502692a0fbc751a3ead01b07e9a65d6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabcce497-e838-40ff-ab98-af5f631b766f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 2382
x-amzn-requestid: 94ae079e-ec35-4e9c-aa30-33be1137c477
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cTRYNHPeIAMFncg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6384629a-386ca2063c3991d4749e18cf;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 07:26:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6hcyQXOxk36UdAHQkayqoUCfBxaKkDk407cfakceLUQBX4PlYwd5tg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 12:36:46 GMT
age: 41713
etag: "b3eaec75f854d22cd1dcd6aa42e37f6d0df50036"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   2382
Md5:    f5469e846da1e0f21cfc480f56a656a6
Sha1:   b3eaec75f854d22cd1dcd6aa42e37f6d0df50036
Sha256: d5701207a8b6b358359ebfd85a6916af7a3abf79acba235bf7d4131b0bc2e9b5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9459
x-amzn-requestid: c08f55b2-7ac6-4dec-b53c-fd3f4533f9c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpBiGoHIAMFR2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bba3-69c2c2d05e55fd745caf1dce;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:09:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w_Mb-0pBwp-pUyU2bdJ8MhrGHkk6VQgJmcGV9MfHwj_yGUMIYZkyrg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 10:53:00 GMT
age: 47939
etag: "2f9532d698b4c28df23e18bbb66399ec776d5b9f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9459
Md5:    e1e6b6ba4f82221b41c3d9129008c76d
Sha1:   2f9532d698b4c28df23e18bbb66399ec776d5b9f
Sha256: 218c6f41a16e6087c611d4db5784a7cc1d027084d0bf2bd6dc3843ee5dfd560f
                                        
                                            GET / HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 30620
link: <https://ifcgmsconsultinggroup.com/wp-json/>; rel="https://api.w.org/", <https://ifcgmsconsultinggroup.com/wp-json/wp/v2/pages/1071>; rel="alternate"; type="application/json", <https://ifcgmsconsultinggroup.com/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381)
Size:   30620
Md5:    77e8a0fd4e1c31b2a9a89b2b7d126aba
Sha1:   9a032038c3689f3e0b031c6d5998466aa4e2527d
Sha256: 351c79197ba4beb89a34f244ec1f639e4fe343e0d7e488ffcfb53814f6a84db6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 323
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:42:05 GMT
etag: "308-5ecec7c54ecc5-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   323
Md5:    b24c24b7da3ffeed6ae8ade102a4d317
Sha1:   c4445b3977ce704b927508108e100213eea67a3c
Sha256: 5421ad49b70f379553eaceec744d753e74d4b065966c08aa7c7dd949553ca9a8
                                        
                                            GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 189
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:47:41 GMT
etag: "d9-5ecec90585bc4-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   189
Md5:    5a18e16eb01cbaa862eb32e6b77bedb2
Sha1:   3abf9b913cc9f558f02cba7c9b822f8d1812cb96
Sha256: d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 00:12:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 00:12:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 00:12:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/vendor/sticky.css?ver=1.0 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 195
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: "17a-5ecec7c5903a6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   195
Md5:    311e3bc13bdbd19c0fb9e14a60a77621
Sha1:   e60c5aae0842a67eefd4b9f09969701c6d9ca9ae
Sha256: b0144258a83043cda38770d21b216e946fcd4a7198895d161f4119cbdd2313b8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 00:12:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 308
x-accel-version: 0.01
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: "2a5-5ee5c55440a4a-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (491)
Size:   308
Md5:    851fd514d412b7e854365f20a4227c8a
Sha1:   08bf47072f70af1816450cc85a5efb3b8f9114d2
Sha256: a9449e3cc7c003e5ed6b93bae7b0bba3e4f1713c52214f41d3591692a759b9d7
                                        
                                            GET /gtag/js?id=G-SPJ7LQ2ECM HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Dec 2022 00:12:01 GMT
expires: Thu, 01 Dec 2022 00:12:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78826
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26337)
Size:   78826
Md5:    0105514c7ad4e060e6818770aebc10c5
Sha1:   213e86fcc5cc8a47b896d7b4b3b82a432a94784b
Sha256: 488f640bf88c9d570012608b1832e609cabf1908f71b5d1273108ea5544a6314
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 308
x-accel-version: 0.01
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: "2a3-5ee5c55440a4a-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (489)
Size:   308
Md5:    0a08469d24387f830bbaaa00b3c228ae
Sha1:   01f5dfeb8f93a32c9a8f66fe5940758109771fcd
Sha256: 3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2022/11/logo-ifc-gms.png HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 42024
last-modified: Tue, 08 Nov 2022 04:15:47 GMT
etag: "6369d7f3-a428"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 769 x 189, 8-bit/color RGBA, non-interlaced\012- data
Size:   42024
Md5:    73fad4990285d53f4f6c1d9763f6f52a
Sha1:   33de80ed9a963de265c85b0839a5d008ac0956cf
Sha256: be845a897c9c8f7f46332d41c04d6ea96f82313e9339fd026f9e285f09170b34
                                        
                                            GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 68
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: "44-5ecec7c6392c8"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size:   68
Md5:    2a637d3d825673c0e3462fa4ed9a1c5c
Sha1:   81668d396da22832d75a986407ff10035e0d5899
Sha256: 69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7
                                        
                                            GET /wp-content/uploads/2022/11/Il-est-toujours-important-de-sassurer-que-les-choix-des-apprenants-cadrent-avec-leurs-objectif-350x250.jpg HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 20506
last-modified: Wed, 09 Nov 2022 11:26:33 GMT
etag: "636b8e69-501a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Size:   20506
Md5:    61ef67e01928151b0fb5e0d4b05d6d44
Sha1:   4621b10b64bad8974407c6fd3d0a7efb748d97d4
Sha256: b1ceb971452b2787a0fbdfd573452fd08886cedec581ddd79bb41a1328964d91
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 00:12:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2022/11/Il-est-toujours-important-de-sassurer-que-les-choix-des-apprenants-cadrent-avec-leurs-objectifs.-350x250.jpg HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 17326
last-modified: Wed, 09 Nov 2022 11:26:22 GMT
etag: "636b8e5e-43ae"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Size:   17326
Md5:    c15ec9f82b139637c5d52755f44c9479
Sha1:   b79b4f035e5e8519b459f4c78498b3042b532777
Sha256: 31560b52451e628bb36389ee0a388e4345b2a93aa0e4c7a2e41387b4f2003d69
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 00:12:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2022/11/FILIERE-INNOVANTES-340x250.jpg HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 25716
last-modified: Fri, 11 Nov 2022 02:40:31 GMT
etag: "636db61f-6474"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 340x250, components 3\012- data
Size:   25716
Md5:    ed4e34db9e7bfa909a150b5995cec6ba
Sha1:   1068309103469434bdfe3d63b18975da22ae0fe7
Sha256: 0663527bf8f60bd14f41c652f2ff6f1e17eb39e31fb31168dd5642b6d13e212e
                                        
                                            GET /wp-content/uploads/2022/11/gangrene-post-bac-350x250.webp HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 19322
last-modified: Wed, 09 Nov 2022 10:27:44 GMT
etag: "636b80a0-4b7a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 350x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   19322
Md5:    003f1b5dc727066cc3931aa8d615fa40
Sha1:   0cf54d796058268cd0ecf9aba6b7731a3eae22a0
Sha256: 09324b26cce970f6de50b3f7434e2e9524a4a56ee63db502e369216c025a26a8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2022/11/gm1.png HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 32716
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-7fcc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Size:   32716
Md5:    60a449a035bae0a181e953ef205157d1
Sha1:   5fb723a9b4b1c99d386f22716d880b8f71119cd1
Sha256: 5861e1367e2c7fe2e8a89518b87db0c244ec1fffffb6a5cefa68b23b4699487f
                                        
                                            GET /wp-content/uploads/2022/11/Excuses-Francais-Authentique-350x250.jpg HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 15843
last-modified: Fri, 11 Nov 2022 02:40:37 GMT
etag: "636db625-3de3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Size:   15843
Md5:    9a9da0cd99ce72546e2589fc05760855
Sha1:   4037fb15e7073f0d7e73d658af7b66467f7a42c3
Sha256: a7a6ab3ae6af50302552cce4c48de0afb1c343dcd7ba536dced9df67fa0a3285
                                        
                                            GET /wp-content/uploads/2022/11/chad.png HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 10924
last-modified: Tue, 08 Nov 2022 02:42:15 GMT
etag: "6369c207-2aac"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 110 x 56, 8-bit/color RGBA, non-interlaced\012- data
Size:   10924
Md5:    17a9e08956aeee81e325e350bb11f35b
Sha1:   7e28a7aa94079cde80766587e3d0b5736e435089
Sha256: 7aced306b0657029a9df94bfca2c298efb0e2962f30238fe5abe6a2ffb2da03f
                                        
                                            GET /wp-content/uploads/2022/11/FILIERE-INNOVANTE2-350x250.jpg HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 19343
last-modified: Fri, 11 Nov 2022 02:40:46 GMT
etag: "636db62e-4b8f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 350x250, components 3\012- data
Size:   19343
Md5:    81be84e1d1dd8a7e5306bd7263b971a3
Sha1:   f177b2db09ff41d306b080f6b436327f74b8a04b
Sha256: 64dc5e6a39c1648fef39376644fbda64f71e3fd6dae3c2ba580d20afa955392b
                                        
                                            GET /wp-content/uploads/2022/11/gm7.png HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 24453
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-5f85"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Size:   24453
Md5:    b0658c662454284a257a1b35ce097bef
Sha1:   1862bb737bdf69c4feec1aaf69eb391601b61dd0
Sha256: d422eaad4f57c4a56b2bf0cb013b841cb059949de9788cce48972c43fff3bd21
                                        
                                            GET /wp-content/uploads/2022/11/gm6.png HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 26225
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-6671"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Size:   26225
Md5:    24de3186c599045f5c3b8bedaeb428cb
Sha1:   7903c4ea4e3aaef0d2d7a6b37fb91962f0faa113
Sha256: 5c0b806a8944f111131b3138b9b049c96efb1c4f9bf2a51067f2d28c3e5f6bf2
                                        
                                            GET /wp-content/uploads/2022/11/gm3.png HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 24801
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-60e1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 61 x 56, 8-bit/color RGBA, interlaced\012- data
Size:   24801
Md5:    bbe20ec1196a4a5e6b3ef6c64b313947
Sha1:   d38261246611437a7d3e2e261cab95225f971831
Sha256: 00e91caf73f0639e777c977f2640daf8de64644d25354d8d0840ae7db8e20607
                                        
                                            GET /wp-content/uploads/2022/11/cimencam.png HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 7033
last-modified: Tue, 08 Nov 2022 02:42:15 GMT
etag: "6369c207-1b79"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 110 x 56, 8-bit/color RGB, non-interlaced\012- data
Size:   7033
Md5:    5ff18bbefc95ac90bf78bd8eca196c07
Sha1:   9d38e19eebacde3fd5c35886c4131cb776eb1a87
Sha256: cb2c77f21780ad9259036438c8e7e26fc5ab97c0d2d2f805072327c5be6cf3d8
                                        
                                            GET /wp-content/uploads/2022/11/gm5.png HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 28598
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-6fb6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Size:   28598
Md5:    a3bf7e392ac143aabacf9b62ba122b03
Sha1:   b8c0ac2b20039db1203e45bf7dbc29d1bd355172
Sha256: 1b7d7863d27a532d02fc55487e0c9a4f02559b15c25801f5f3f6c2e64bb27f60
                                        
                                            GET /wp-content/uploads/2022/11/lipem-ifc.jpg HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 72625
last-modified: Tue, 08 Nov 2022 02:42:18 GMT
etag: "6369c20a-11bb1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 533x546, components 3\012- data
Size:   72625
Md5:    d7fd1efdf07399374e1d7e44785e7e2f
Sha1:   a41859c10d4733a67ebbf503268f565cc1e65159
Sha256: b963003a536cec899f9ab2678a4f818c0604be75428b91b1e1fe1c8dffa234f3
                                        
                                            GET /wp-content/uploads/2022/11/olinga-ifc.jpg HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 23450
last-modified: Tue, 08 Nov 2022 02:42:19 GMT
etag: "6369c20b-5b9a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 410x395, components 3\012- data
Size:   23450
Md5:    429aa9be756d3029a32acceeb7522470
Sha1:   f65d92588967e2d3656ea8fe5ef90b5ad59ec0c5
Sha256: a8ce93b8fc6198affe1513107cb4703ee42615ca1c414eaa2402e60269a1aec6
                                        
                                            GET /wp-content/uploads/2022/11/gm8.png HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 29432
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-72f8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Size:   29432
Md5:    e9b83416833a953364a5ea3ff03421e9
Sha1:   c51d5f9199082388df95336fbe31ec37bf166f09
Sha256: b76703d0c86ac65daef27d3c35bd9a2bab7d3869ecd11c970e5a17254c55b50f
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 15 Nov 2022 20:17:48 GMT
etag: W/"6373f3ec-172a9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (47826)
Size:   45449
Md5:    4bd92c869f405e3f0018c7f566971bc7
Sha1:   771d64a98c6c12fb41bdd0044cb9436dd5129062
Sha256: 127c105e07fc25665bb402006b3b2a08d407dcfda0111a2454c14e62b5a2054a
                                        
                                            GET /wp-content/uploads/2022/11/gm2.png HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 31125
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-7995"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Size:   31125
Md5:    0f72cc529b24c2251c71fb8e8f6fcde5
Sha1:   ff30b28c9263edcf6a3fa2ddcd9005e9bc8597b0
Sha256: 11f8540ac2e7019282e30c3ab78f90921eeb52d159387afa941d884457b78876
                                        
                                            GET /wp-content/uploads/2022/11/gm4.png HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 28457
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-6f29"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Size:   28457
Md5:    d77dcab3fcc4d54b845b25844079b93b
Sha1:   825629c4ca82d71d10854fefb310fd8d9ff5195c
Sha256: 347d8c51f040d9891d871403d2d0e738421849c332ed54e78ce1c40786bf4529
                                        
                                            GET /wp-content/uploads/2022/11/logo_commercialBank.png HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 8093
last-modified: Tue, 08 Nov 2022 02:42:18 GMT
etag: "6369c20a-1f9d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 110 x 56, 8-bit/color RGBA, non-interlaced\012- data
Size:   8093
Md5:    a4865c5cd05f146c611d5a85d6948d69
Sha1:   57859e2bd5594700f7cb80b8d9ee0b36e344c2a6
Sha256: e8981eca39f6c2e357a9076f7621d581757268b16dbb4ab92076133dbca22753
                                        
                                            GET /wp-content/uploads/2022/11/HENRI-SAMGBA-e1648204192780.jpg HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 22605
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-584d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 406x298, components 3\012- data
Size:   22605
Md5:    69e665b135addc0db528d20769129d83
Sha1:   93a0942ae94ef27a590cb5934be51a92aa0f5b6f
Sha256: b6a2934ab019dea29eab654639334e0a8b2fbf56633948d5750d2037719c2593
                                        
                                            GET /wp-content/uploads/elementor/css/post-6.css?ver=1669456559 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Sat, 26 Nov 2022 09:55:59 GMT
etag: W/"6381e2af-488"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1160), with no line terminators
Size:   61938
Md5:    9430ba076af727beb174aab879f2cc0b
Sha1:   e9c833a9b989b01d050d138617e56898ef733512
Sha256: 20dfa19770b1ac2777c0166d15d971136d7720c8833cebbb1d3976dda5e6d013

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-19538"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65497)
Size:   99313
Md5:    514f47e635d2d7a488984b46545cdd42
Sha1:   05e4451e64e2e83299db199eb02d42ae9fae2f6a
Sha256: 4e6218df08d5789adf80656b3150d4b2e7f267725b85f71fdcac56159d3bfcec

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/stm_fonts/stm/stm.css?ver=1.0 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:20 GMT
etag: W/"6369c20c-29a3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   21748
Md5:    74eaca692b2712beb1ad0daeaee77069
Sha1:   1d9bd6df980d95608ef9025c48c65b3c31219581
Sha256: e11529debc10bdd793da493b8767c3b4d953009783b970c9fa8deb0f8fbb8a53

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/essential-addons-elementor/eael-7435.js?ver=1669396630 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 0
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:42:20 GMT
etag: "0-5ecec7d2caf5b"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 00:12:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 00:12:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/font-woff
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 7536
last-modified: Tue, 08 Nov 2022 02:42:09 GMT
etag: "6369c201-1d70"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Size:   7536
Md5:    04eb8fc57f27498e5ae37523e3bfb2c7
Sha1:   d942ae11706c3f7e511e3c49b0e4574d7ad199c4
Sha256: f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ifcgmsconsultinggroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:28:50 GMT
expires: Thu, 30 Nov 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 16991
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size:   7884
Md5:    9212f6f9860f9fc6c69b02fedf6db8c3
Sha1:   ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
Sha256: 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
                                        
                                            GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ifcgmsconsultinggroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 12:29:21 GMT
expires: Fri, 24 Nov 2023 12:29:21 GMT
cache-control: public, max-age=31536000
age: 560560
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Size:   7816
Md5:    25b0e113ca7cce3770d542736db26368
Sha1:   cb726212d5d525021752a1d8470a0fb593e0c49e
Sha256: 9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 00:12:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/modal.js?ver=1.0 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 166
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: "118-5ecec7c5903a6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   166
Md5:    df1dd146cfb4c3a6e53f17b74cf2ab3a
Sha1:   ae289c1d39dda54ea71c71c31b69036434a49c43
Sha256: 30d1489b8276d25fa90f8e8d0b9bbc2eb37bd0e0aabe2c608ca02de1e3258dd8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ifcgmsconsultinggroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:28:50 GMT
expires: Thu, 30 Nov 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 16991
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Size:   7748
Md5:    a09f2fccfee35b7247b08a1a266f0328
Sha1:   0da2d17e738f46d2a09e6fb7969da451719a9820
Sha256: cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
                                        
                                            GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ifcgmsconsultinggroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:28:50 GMT
expires: Thu, 30 Nov 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 16991
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Size:   8000
Md5:    72993dddf88a63e8f226656f7de88e57
Sha1:   179f97ec0275f09603a8db94d4380eb584d81cd5
Sha256: f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
                                        
                                            GET /s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ifcgmsconsultinggroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 20:21:43 GMT
expires: Thu, 30 Nov 2023 20:21:43 GMT
cache-control: public, max-age=31536000
age: 13818
last-modified: Wed, 27 Apr 2022 16:52:02 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 7824, version 1.0\012- data
Size:   7824
Md5:    af4d371a10271dafeb343f1eace762bc
Sha1:   6d11d743bc3cfb169d70bc86450f18351dc1a905
Sha256: 60bf0aba6526436f3930c58c12047687fbb6bff4dd180cce4613458ed3439ea2
                                        
                                            GET /wp-content/themes/consulting/assets/js/stm-hfe.js?ver=6.3.6 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 307
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: "302-5ecec7cd298c4-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   307
Md5:    02a62eea2840bb78c317369c31c0d930
Sha1:   34ef55d10389af6e45643ab7eb865f999d82e033
Sha256: f9081c5d82738cf9fe507e9737dae96bef66fc578c498bd08d07d39e866e3c0c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/poppins/v20/pxiGyp8kv8JHgFVrJJLucHtA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ifcgmsconsultinggroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:43:07 GMT
expires: Wed, 29 Nov 2023 15:43:07 GMT
cache-control: public, max-age=31536000
age: 116934
last-modified: Wed, 27 Apr 2022 16:07:02 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 8668, version 1.0\012- data
Size:   8668
Md5:    a242ba0df3a128a2cab929a8c45d5056
Sha1:   d70e2c70b21cbb66cd883ae56e2dedacefd81c7c
Sha256: 50d0c1742d80ac71f4cde20e8c04d41a24806af342831f479938b527fbff0972
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 00:12:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/wpforms/assets/js/integrations/elementor/frontend.min.js?ver=1.7.5 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 374
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:42:11 GMT
etag: "2f2-5ecec7ca917ba-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (754), with no line terminators
Size:   374
Md5:    ef785f463505633971eae5c08ad626d4
Sha1:   624e22257f386801822229db3a4bbd2e24b25e2f
Sha256: b2a0dc77f0f79d81698a7e3893e16ecba7b0d980b80a5233656d9b11f1d8160d
                                        
                                            GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/css/font-awesome.min.css?ver=1.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 77160
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: "6369c1fe-12d68"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 93372
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: "6381dd72-16cbc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 93372, version 1.0\012- data
Size:   93372
Md5:    aab0bb3379e0eb7ebc26071db61fbd57
Sha1:   711c8d350c4192c2f1aa7f73551445b89fb4b161
Sha256: 691fa7d17effc7d303eda0ad7e4a1d91b2f375506cfc8a774480cc2b55f156ea

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 13276
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: "6381dd72-33dc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Size:   13276
Md5:    f0f8230116992e521526097a28f54066
Sha1:   0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
Sha256: 8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:47:42 GMT
etag: W/"6369c34e-592"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1391)
Size:   48658
Md5:    84d3b4061ee486eda2cb955f4a3cc1b3
Sha1:   3d02393e0b866a58a0e56e82fb9873d8727432e0
Sha256: b11feca99e058f8f9a4b2946ceb5f001465f19cd3fb8c302a021b88167f05168

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:47:42 GMT
etag: W/"6369c34e-4991"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18798)
Size:   56341
Md5:    074b5e537627f55ea495646e5bc34cd2
Sha1:   186f36de4e42adff40c1b8f9b1c9f0416840d445
Sha256: 84232ef15559427a1ae9cfa068d41883d6e94b6e2a27ff9e6f244de235e0e20d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/stm_fonts/stm/stm.ttf?oljwaf HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/wp-content/uploads/stm_fonts/stm/stm.css?ver=1.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/font-sfnt
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
content-length: 93104
last-modified: Tue, 08 Nov 2022 02:42:20 GMT
etag: "6369c20c-16bb0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size:   30378
Md5:    2ee8a69b95b97ca6a6732b0fd3c7b580
Sha1:   6c7197e4e82d14c7c01ff846588c760528c9d46f
Sha256: d9cb5f72782665cde94216653d5fa4d0f066df75cf02994281c8998a87a431ff

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2022/11/cropped-logo-ifc-gms-32x32.png HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:02 GMT
content-length: 1920
last-modified: Wed, 09 Nov 2022 15:55:54 GMT
etag: "636bcd8a-780"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size:   1920
Md5:    f9b6a45e21801db8c40bb65a4af565cc
Sha1:   608e278983df15d2e17d26a06aca483d51a86c0a
Sha256: 7aaf4d9cab17b2266fb19afb7122ddac6d062f4b4aa95da51df9d04b935bdaf8
                                        
                                            GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.3
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1669853520.1.0.1669853520.0.0.0; _ga=GA1.1.1334258008.1669853521
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:02 GMT
content-length: 2545
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: "6369c1fe-9f1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 24 x 24\012- data
Size:   2545
Md5:    4b3afb84b2b71ef56df09997a350bd04
Sha1:   accdac8a7abeab0e21c49539aad0a973addb28ef
Sha256: 9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
                                        
                                            GET /wp-content/uploads/2022/11/cover-3-1536x1024.jpg HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1669853520.1.0.1669853520.0.0.0; _ga=GA1.1.1334258008.1669853521
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:02 GMT
content-length: 182079
last-modified: Tue, 08 Nov 2022 02:42:16 GMT
etag: "6369c208-2c73f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 1536x1024, components 3\012- data
Size:   182079
Md5:    6599b247f0042f56bc96dfeb1f8ffbe1
Sha1:   2cf65b6e02d7d4f78bd6a9479dbf37967afa9650
Sha256: 9c90ed643ec7a2070b86b9dc9dc1ccddf029e27dedb1ca9a4e420b04714478b3
                                        
                                            GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1669853520.1.0.1669853520.0.0.0; _ga=GA1.1.1334258008.1669853521
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:02 GMT
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-54f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1320)
Size:   136570
Md5:    c7e66566e2ec5b6930296df44ed73632
Sha1:   1da1b54663332496e1459305d6cd76165cf923a9
Sha256: 71065763b1e96b99e6ab7516533412f773e659c67ddfb4541a65a445a1093d0b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2022/11/IFC_REMISE1.jpg HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1669853520.1.0.1669853520.0.0.0; _ga=GA1.1.1334258008.1669853521
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:02 GMT
content-length: 100759
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-18997"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x720, components 3\012- data
Size:   100759
Md5:    f88e4943baa0afaa7be023b6a34f6fef
Sha1:   a6d57d00c6820a24bd553367bcc29cfd57543d31
Sha256: a8c51ac8c36daf338a389eda8edc6b5c8aa6d9b0b0fc2488d19f7cacd725fad2
                                        
                                            GET /wp-content/uploads/2022/11/cover-9.webp HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1669853520.1.0.1669853520.0.0.0; _ga=GA1.1.1334258008.1669853521
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:02 GMT
content-length: 47210
last-modified: Tue, 08 Nov 2022 02:42:16 GMT
etag: "6369c208-b86a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 626x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   47210
Md5:    03d31b81647bfc85aaae98068b3fc524
Sha1:   a3244d63ec9f09aff19f269406c37b6678c96974
Sha256: 5ba34f7606cba9912918db4d6b3291a44dfaa6a16cb9b355567edb0c4e91043b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:47:42 GMT
etag: W/"6369c34e-27f6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   208853
Md5:    db4deac677111afa3e25214449ff398c
Sha1:   fd71191b8da1c8844ebb05b0f721a07d79a268bb
Sha256: fa79a0718e4429247a66270e3d6ef1d01c2c828ec1567bada2b5f9239000347a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1669853520.1.0.1669853520.0.0.0; _ga=GA1.1.1334258008.1669853521
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:02 GMT
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-21f91"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65280)
Size:   129727
Md5:    e32fea73ef547bc361a9ca0ca97114ec
Sha1:   760b3a346d6676d2abb429572e4429e007d7af67
Sha256: 85e224dc83f35c7f7c5276a32e2ae1f16a7dba2d231810755871f94e75f48ea9
                                        
                                            GET /wp-content/uploads/2022/11/IFC_REMISE10.jpg HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1669853520.1.0.1669853520.0.0.0; _ga=GA1.1.1334258008.1669853521
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:02 GMT
content-length: 95504
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-17510"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x720, components 3\012- data
Size:   95504
Md5:    3f98e56545816910b22c3c6699bcc321
Sha1:   b713e6a6e8643a18ac263fbc3fed4673ccc97373
Sha256: 0e3a23d69c860de205cf067ba6288b737a79085e379a3619f1473d6fcc9e8399
                                        
                                            POST /g/collect?v=2&tid=G-SPJ7LQ2ECM&gtm=2oebs0&_p=443730735&cid=1334258008.1669853521&ul=en-us&sr=1280x1024&_s=1&sid=1669853520&sct=1&seg=0&dl=https%3A%2F%2Fifcgmsconsultinggroup.com%2F&dt=Accueil%20-%20IFC%20GMS%20CONSULTING%20GROUP%2C%20Institut%2FCentre%20de%20Formation%20Professionnelle%20et%20de%20Certification%2C%20Yaound%C3%A9-Douala-Cameroun.%20QHSE-Ressources%20Humaines%20(RH)-Marketing-Communication%20Digitale-Informatique-Secr%C3%A9tariat-Maintenance-Infographie%20WebDesign-Management%20des%20Projets-Suivi%20Evaluation&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ifcgmsconsultinggroup.com
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

search
                                         216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://ifcgmsconsultinggroup.com
date: Thu, 01 Dec 2022 00:12:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /wp-content/uploads/elementor/css/post-1071.css?ver=1669456561 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Sat, 26 Nov 2022 09:56:01 GMT
etag: W/"6381e2b1-d6da"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/consulting/assets/css/select2.min.css?ver=6.3.6 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-3a4b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/consulting/assets/js/isotope.pkgd.min.js?ver=6.3.6 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-86e2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.0 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:01 GMT
etag: W/"6369c1f9-1472"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/consulting/inc/megamenu/assets/css/megamenu.css?ver=6.1.1 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-39fc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/consulting/assets/css/layouts/global_styles/main.css?ver=6.3.6 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-fb21"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css?family=Poppins:600%2C700%7CRoboto:400&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.106
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 00:12:01 GMT
date: Thu, 01 Dec 2022 00:12:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/css/widget-carousel.min.css HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:01 GMT
etag: W/"6369c1f9-9011"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/app.js?ver=1.0 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: W/"6369c1fe-c93"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-9e41"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.8.1 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-e7d0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/consulting/style.css?ver=6.3.6 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:15 GMT
etag: W/"6369c207-4fec"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/consulting/assets/css/font-awesome.min.css?ver=6.3.6 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-792c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.3 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:09 GMT
etag: W/"6369c201-633bb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-135d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:23 GMT
etag: W/"6369c20f-132e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.8.1 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-684e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.4 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Sat, 26 Nov 2022 09:33:55 GMT
etag: W/"6381dd83-d69"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/consulting/assets/css/header_builder.css?ver=6.3.6 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-9cb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-e238"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: W/"6369c1fe-127a4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/stm_uploads/theme_options.css?ver=6.3.6 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 04:29:38 GMT
etag: W/"6369db32-21c9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.3 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:09 GMT
etag: W/"6369c201-285db"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:23 GMT
etag: W/"6369c20f-15fd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:23 GMT
etag: W/"6369c20f-194b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/consulting/assets/css/jquery.fancybox.css?ver=6.3.6 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-4404"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=6.3.6 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.106
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 00:12:01 GMT
date: Thu, 01 Dec 2022 00:12:01 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/consulting/assets/js/packery-mode.pkgd.min.js?ver=6.3.6 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-3532"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-4b4f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/consulting/inc/megamenu/assets/js/megamenu.js?ver=6.1.1 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-6af"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/consulting/assets/css/owl.carousel.css?ver=6.3.6 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-c62"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/elementor/css/post-7435.css?ver=1669456561 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Sat, 26 Nov 2022 09:56:01 GMT
etag: W/"6381e2b1-5089"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/consulting/assets/js/bootstrap.min.js?ver=6.3.6 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-8d32"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:23 GMT
etag: W/"6369c20f-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.8.0 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:01 GMT
etag: W/"6369c1f9-60dc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-2dff"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.3 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:09 GMT
etag: W/"6369c201-e394"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-80b3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:47:42 GMT
etag: W/"6369c34e-53c0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.8.1 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-3acf"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/consulting/assets/js/jquery.fancybox.pack.js?ver=6.3.6 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-10a9d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/consulting/assets/js/select2.min.js?ver=6.3.6 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-f572"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.8.0 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:01 GMT
etag: W/"6369c1f9-2e8e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/css/header/main.css?ver=1.0 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         161.97.187.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 00:12:01 GMT
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: W/"6369c1fe-bcfa"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1 
Host: ifcgmsconsultinggroup.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search